View page
Talk page
Page Notifications Off
  1. User:rottmann
  2. JB10 (Northstar Squeeze)

JB10 (Northstar Squeeze)

Modified 11:14, 14 Feb 2012 by rottmann | Page History

    Start Tomcat /Apache

    /etc/init.d/apache2 start

    /etc/init.d/tomcat start

    Tomcat manager /admin

    http://134.104.27.210:8180 aufrufen, dann den links folgen

    Tomcat/Java Configuration

    /etc/default/tomcat5.5

    ASTRON LOGIN JAAS Configuration

    in /etc/default/tomcat5.5 add

    -Djava.security.auth.login.config=$CATALINA_HOME/conf/astron.login

    to the JAVA_OPTS line

    Copy astron.login to /usr/share/tomcat5.5/conf.

    These instructions override the instructions found on the northstar wiki page regarding astron.login. Especially don't change java.security as that file will be overwritten on java updates.

    SSL-MYSQL Connection

    Connection to the database server must be realized over SSL. Because of problems that newer mysql-connectors (which are required to support ssl) have caused with NorthStar we use stunnel to make the ssl connection.

    1) install package stunnel

    2) edit /etc/stunnel/stunnel.conf

    sslVersion = all
    chroot = /var/lib/stunnel4/
    setuid = stunnel4
    setgid = stunnel4
    pid = /stunnel4.pid
    CAfile = /etc/ssl/certs/ca-certificates.crt
    socket = l:TCP_NODELAY=1
    socket = r:TCP_NODELAY=1
    debug = 3
    ;output = /var/log/stunnel4/stunnel.log
    client = yes
    [mysqls]
    accept  = localhost:3306
    connect = mysql2.mpifr-bonn.mpg.de:3307

    3) enable stunnel on boot

    edit /etc/default/stunnel4 and set:

    ENABLED=1

    then run

    update-rc.d stunnel4 defaults

     

    JAAS Realm

    NorthStar verwendet ein eigenes Authentifizieruns- und Authorisierungsmodul basierend auf JAAS. Zum Aktivieren muss dieses Modul im Context der Webapplikation bekannt gemacht werden. Dazu muss die folgende Zeile in alle Webapplikations-Module (useradmistration, proposal, ...) eingetragen werden:

     <Realm appName="AstronLogin" className="org.apache.catalina.realm.JAASRealm" debug="99" roleClassNames="nl.astron.security.loginmodule.AstronRolePrincipal" userClassNames="nl.astron.security.loginmodule.AstronPrincipal" />

    Die Context Dateien liegen unter: /usr/share/tomcat5.5/conf/Catalina/localhost

    Java Security Problems


    Wenn beim Starten von Tomcat "access denied" messages kommen, kann man testweise die Benutziung des Java Security Managers abstellen. Dazu /etc/default/tomcat55 editieren und

    TOMCAT5_SECURITY=no 

    eintragen.

    Konkret braucht Jasper einige Access Permissions. Diese müssen in /usr/lib/jvm/java-6-sun-1.6.0.26/jre/lib/security/java.policy eingetragen werden:

        permission java.lang.RuntimePermission "accessClassInPackage.org.apache.jasper.runtime";
        permission java.lang.RuntimePermission "accessClassInPackage.org.apache.jasper.runtime.*";
        permission java.util.PropertyPermission "org.apache.jasper.runtime.BodyContentImpl.LIMIT_BUFFER", "read";

    Fixes

    relative path error in useraccount.jsp

    pages/admin/useraccount/useraccount.jsp change

    <jsp:include page="../layout/box_header_no_top.jsp" />

    to

    <jsp:include page="/pages/layout/box_header_no_top.jsp" />

    same for:

    help/northstar_help.jsp
    host/help/general_help.jsp
    modules/effelsberg/help/justification_instructions.jsp
    modules/effelsberg/help/proposal_help.jsp
     

    missing struts-template.xml

    When starting up tomcat there is an error reported about missing struts-template.tld

    remove reference to struts-template.tld in web.xml

    (/usr/share/tomcat5.5/webapps/useradministration/WEB-INF/web.xml)

     

    Beanutils

    With the newest (squeeze) version of beanutils the following error occurs:

    2012-02-07 09:28:02,966 FATAL eu.radionet.northstar.control.ActionServlet:152 - admin - http://jb10:8180/proposal/processProposalList.do
    Unhandled exception: No bean specified
    StackTrace:
    class java.lang.IllegalArgumentException

     

    Solve: Copy beanutils from old northstar server (V 1.7) to tomcats shared/lib directory

    Struts / Invalid CancelException

    The following error occurs:

    class org.apache.struts.action.InvalidCancelException

    Reason: (probably)

    http://wiki.apache.org/struts/Struts...71c568309643e4

    Solve: copy struts.jar from old northstar server to shared/lib director

    Repository

    commons-transactions is required (not part of debian squeeze, downloaded from apache and installed in tomcats shared/lib folder


    second level caching (using ehcache) must be enabled for the repository webapp. Edit

    /var/lib/tomcat5.5/webapps/repository/WEB-INF/classes/conf/northstar/northstar-repository.cfg.xml

    add:

    <property name="hibernate.cache.provider_class">org.hibernate.cache.EhCacheProvider</property>
     <property name="hibernate.cache.use_second_level_cache">true</property>

    ehcache

    with debian squeeze version of ehcache the northstar application throws the following error:

     
    class net.sf.ehcache.CacheException
        net.sf.ehcache.config.ConfigurationFactory.parseConfiguration(Unknown Source)
        net.sf.ehcache.config.ConfigurationFactory.parseConfiguration(Unknown Source)
        net.sf.ehcache.CacheManager.parseConfiguration(Unknown Source)
        net.sf.ehcache.CacheManager.init(Unknown Source)
        net.sf.ehcache.CacheManager.<init>(Unknown Source)
        org.hibernate.cache.EhCacheProvider.start(EhCacheProvider.java:131)
       

    Solve: use old ehcache.jar (from previous northstar installation

    Tag page (Edit tags)
    • No tags
    Pages that link here
    Page statistics
    2350 view(s), 16 edit(s) and 6499 character(s)

    Comments

    You must login to post a comment.

    Attach file

    Attachments